Skip to content

Stable test sync #343

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 28 commits into from
Jul 16, 2025
Merged

Stable test sync #343

merged 28 commits into from
Jul 16, 2025

Conversation

@Luisfc68
Copy link
Collaborator

@Luisfc68 Luisfc68 commented Jul 16, 2025

What

Sync QA-Test with Stable-Test

dependabot bot and others added 27 commits October 21, 2024 17:50
@dependabot
chore(deps): bump crytic/slither-action from 0.3.0 to 0.4.0
e264e33 
Bumps [crytic/slither-action](https://github.com/crytic/slither-action) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/crytic/slither-action/releases)
- [Commits](crytic/slither-action@6ef3a33...f197989)

---
updated-dependencies:
- dependency-name: crytic/slither-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
chore(deps): bump actions/checkout from 4.2.1 to 4.2.2
7cd9c3e 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@eef6144...11bd719)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
chore(deps): bump actions/dependency-review-action from 4.3.4 to 4.5.0
fabf048 
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.3.4 to 4.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](actions/dependency-review-action@5a2ce3f...3b139cf)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@Luisfc68
Merge pull request #281 from rsksmart/QA-Test
ec2bf1a 
Qa test -> Stable-Test
@dependabot
chore(deps): bump actions/upload-artifact from 4.4.0 to 4.5.0
fd6bb5e 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.4.0 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@5076954...6f51ac0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
chore(deps): bump github/codeql-action from 3.26.9 to 3.28.0
c2c7050 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.9 to 3.28.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@461ef6c...48ab28a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@Luisfc68
Merge pull request #286 from rsksmart/dependabot/github_actions/githu…
325913c 
…b/codeql-action-3.28.0

chore(deps): bump github/codeql-action from 3.26.9 to 3.28.0
@Luisfc68
Merge branch 'master' into dependabot/github_actions/actions/upload-a…
54012a5 
…rtifact-4.5.0
@Luisfc68
Merge pull request #284 from rsksmart/dependabot/github_actions/actio…
a520f84 
…ns/upload-artifact-4.5.0

chore(deps): bump actions/upload-artifact from 4.4.0 to 4.5.0
@Luisfc68
Merge branch 'master' into dependabot/github_actions/actions/dependen…
b72d4bd 
…cy-review-action-4.5.0
@Luisfc68
Merge pull request #273 from rsksmart/dependabot/github_actions/actio…
47ef54b 
…ns/dependency-review-action-4.5.0

chore(deps): bump actions/dependency-review-action from 4.3.4 to 4.5.0
@Luisfc68
Merge branch 'master' into dependabot/github_actions/crytic/slither-a…
3ea58ef 
…ction-0.4.0
@Luisfc68
Merge pull request #252 from rsksmart/dependabot/github_actions/cryti…
9bed03d 
…c/slither-action-0.4.0

chore(deps): bump crytic/slither-action from 0.3.0 to 0.4.0
@bernacodesido
Merge branch 'master' into dependabot/github_actions/actions/checkout…
8d9131f 
…-4.2.2
@bernacodesido
Exclude openzeppelin contracts
d1a71b7
@Luisfc68
Merge pull request #264 from rsksmart/dependabot/github_actions/actio…
3fedbad 
…ns/checkout-4.2.2

chore(deps): bump actions/checkout from 4.2.1 to 4.2.2
@bernacodesido
Configure codeQL
ece56bc
@bernacodesido @Luisfc68
Update .github/workflows/slither.yml
95c4460 
Co-authored-by: Luisfc68 <[email protected]>
@bernacodesido
Merge branch 'master' into slither
d030bcd
@bernacodesido
Merge branch 'master' into codeql
aedf529
@Luisfc68
Merge pull request #297 from rsksmart/slither
085dd1d 
Exclude openzeppelin contracts
@Luisfc68
Merge branch 'master' into codeql
d7f57f3
@Luisfc68
Merge pull request #298 from rsksmart/codeql
5808968 
Configure codeQL
@Luisfc68
chore: add mainnet deploy info
45ffbe6
@Luisfc68
Merge pull request #314 from rsksmart/mainnet-deploy
1721450 
chore: add mainnet deploy info
@Luisfc68
Merge branch 'master' into Stable-Test
f5ca977
@Luisfc68
Merge branch 'QA-Test' into Stable-Test
9249b30
@github-actions
Copy link

github-actions bot commented Jul 16, 2025
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
actions/actions/checkout 11bd71901bbe5b1630ceea73d27597364c9af683 🟢 5.2
Details
CheckScoreReason
Maintained⚠️ 01 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Packaging⚠️ -1packaging workflow not detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies🟢 3dependency not pinned by hash detected -- score normalized to 3
Branch-Protection⚠️ -1internal error: error during GetBranch(releases/v2): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
Security-Policy🟢 9security policy file detected
SAST🟢 8SAST tool detected but not run on all commits
Vulnerabilities⚠️ 010 existing vulnerabilities detected
actions/actions/checkout 11bd71901bbe5b1630ceea73d27597364c9af683 🟢 5.2
Details
CheckScoreReason
Maintained⚠️ 01 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Packaging⚠️ -1packaging workflow not detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies🟢 3dependency not pinned by hash detected -- score normalized to 3
Branch-Protection⚠️ -1internal error: error during GetBranch(releases/v2): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
Security-Policy🟢 9security policy file detected
SAST🟢 8SAST tool detected but not run on all commits
Vulnerabilities⚠️ 010 existing vulnerabilities detected
actions/github/codeql-action/analyze aa578102511db1f4524ed59b8cc2bae4f6e88195 UnknownUnknown
actions/github/codeql-action/autobuild aa578102511db1f4524ed59b8cc2bae4f6e88195 UnknownUnknown
actions/github/codeql-action/init aa578102511db1f4524ed59b8cc2bae4f6e88195 UnknownUnknown
actions/actions/checkout 11bd71901bbe5b1630ceea73d27597364c9af683 🟢 5.2
Details
CheckScoreReason
Maintained⚠️ 01 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Packaging⚠️ -1packaging workflow not detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies🟢 3dependency not pinned by hash detected -- score normalized to 3
Branch-Protection⚠️ -1internal error: error during GetBranch(releases/v2): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
Security-Policy🟢 9security policy file detected
SAST🟢 8SAST tool detected but not run on all commits
Vulnerabilities⚠️ 010 existing vulnerabilities detected
actions/actions/dependency-review-action 3b139cfc5fae8b618d3eae3675e383bb1769c019 🟢 6.8
Details
CheckScoreReason
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Code-Review🟢 10all changesets reviewed
Security-Policy🟢 9security policy file detected
Packaging⚠️ -1packaging workflow not detected
Binary-Artifacts🟢 10no binaries found in the repo
Maintained🟢 1022 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies⚠️ 2dependency not pinned by hash detected -- score normalized to 2
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Branch-Protection🟢 6branch protection is not maximal on development and all release branches
SAST🟢 9SAST tool detected but not run on all commits
Vulnerabilities🟢 73 existing vulnerabilities detected
actions/actions/checkout 11bd71901bbe5b1630ceea73d27597364c9af683 🟢 5.2
Details
CheckScoreReason
Maintained⚠️ 01 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Packaging⚠️ -1packaging workflow not detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies🟢 3dependency not pinned by hash detected -- score normalized to 3
Branch-Protection⚠️ -1internal error: error during GetBranch(releases/v2): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
Security-Policy🟢 9security policy file detected
SAST🟢 8SAST tool detected but not run on all commits
Vulnerabilities⚠️ 010 existing vulnerabilities detected
actions/actions/upload-artifact 6f51ac03b9356f520e9adb1b1b7802705f340c2b 🟢 4.9
Details
CheckScoreReason
Maintained⚠️ 12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Packaging⚠️ -1packaging workflow not detected
Binary-Artifacts🟢 10no binaries found in the repo
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Pinned-Dependencies⚠️ 1dependency not pinned by hash detected -- score normalized to 1
Signed-Releases⚠️ -1no releases found
Security-Policy🟢 9security policy file detected
Branch-Protection⚠️ 0branch protection not enabled on development/release branches
SAST🟢 9SAST tool detected but not run on all commits
Vulnerabilities⚠️ 28 existing vulnerabilities detected
actions/github/codeql-action/upload-sarif 48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 UnknownUnknown
actions/actions/checkout 11bd71901bbe5b1630ceea73d27597364c9af683 🟢 5.2
Details
CheckScoreReason
Maintained⚠️ 01 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts🟢 10no binaries found in the repo
Code-Review🟢 10all changesets reviewed
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
License🟢 10license file detected
Fuzzing⚠️ 0project is not fuzzed
Packaging⚠️ -1packaging workflow not detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies🟢 3dependency not pinned by hash detected -- score normalized to 3
Branch-Protection⚠️ -1internal error: error during GetBranch(releases/v2): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
Security-Policy🟢 9security policy file detected
SAST🟢 8SAST tool detected but not run on all commits
Vulnerabilities⚠️ 010 existing vulnerabilities detected
actions/crytic/slither-action f197989dea5b53e986d0f88c60a034ddd77ec9a8 🟢 3.6
Details
CheckScoreReason
Binary-Artifacts🟢 10no binaries found in the repo
Token-Permissions⚠️ -1No tokens found
Maintained⚠️ 00 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Dangerous-Workflow⚠️ -1no workflows found
Packaging⚠️ -1packaging workflow not detected
Code-Review⚠️ 0Found 0/15 approved changesets -- score normalized to 0
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Fuzzing⚠️ 0project is not fuzzed
Vulnerabilities🟢 100 existing vulnerabilities detected
License🟢 10license file detected
Signed-Releases⚠️ -1no releases found
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
Security-Policy🟢 10security policy file detected
Branch-Protection⚠️ 0branch protection not enabled on development/release branches
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
actions/github/codeql-action/upload-sarif 48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 UnknownUnknown

Scanned Files

  • .github/workflows/ci.yml
  • .github/workflows/codeql.yml
  • .github/workflows/dependency-review.yml
  • .github/workflows/scorecard.yml
  • .github/workflows/slither.yml

@Luisfc68 Luisfc68 merged commit 7aab597 into QA-Test Jul 16, 2025
6 checks passed
@Luisfc68 Luisfc68 deleted the stable-test-sync branch July 16, 2025 14:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndresQuijano AndresQuijano Awaiting requested review from AndresQuijano

@Dominikkq Dominikkq Awaiting requested review from Dominikkq

1 more reviewer

@MaximStanciu8 MaximStanciu8 MaximStanciu8 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Luisfc68 @MaximStanciu8 @bernacodesido